Skip to content

Releases: mrl5/vulner

v0.7.1

11 Jul 21:33
v0.7.1
Compare
Choose a tag to compare

0.7.1 (2023-07-11)

Bug Fixes

  • dependabot vulnerability alerts (78eaa62)

v0.7.0

15 Sep 16:49
v0.7.0
Compare
Choose a tag to compare

0.7.0 (2022-09-15)

Bug Fixes

Features

  • cli: tracker - new command that prints contents of OS vulnerability tracker [#30] (12320f7)
  • scan: include Funtoo bugtracker tickets for detected CVEs [#30] (825c867)

v0.6.2

24 Jul 17:36
v0.6.2
Compare
Choose a tag to compare

0.6.2 (2022-07-24)

Bug Fixes

  • cpe-tag: errors when package version "0" or "9999" [#54] (cff2ed2)
  • scan: abort on invalid NVD API key (291f60e)
  • scan: don't leak apiKey to ERROR log [#55] (31c2f76)
  • scan: improve error logs related to NVD API throttling (d76aa2d)

v0.6.1

17 Jun 19:00
v0.6.1
Compare
Choose a tag to compare

0.6.1 (2022-06-17)

Bug Fixes

  • cli: treat API key as a secret (0b08d3e)

v0.6.0

12 Apr 19:06
v0.6.0
Compare
Choose a tag to compare

0.6.0 (2022-04-12)

Bug Fixes

  • cargo audit fix - drop chrono dependency [#47][#48] (2da3ced)
  • scan: append package report file instead of truncate (997c582)

Features

  • scan: package name as report filename (3f9fa67)

Performance Improvements

  • cpe-tag: avoid compiling the same regex in a loop (e08f29e)
  • scan: allocate 40.8% less memory for cpe feed (7ab77cf)

v0.5.0

18 Mar 20:38
v0.5.0
Compare
Choose a tag to compare

0.5.0 (2022-03-18)

Bug Fixes

  • scan: chmod 700 for scan results directory (9281be3)

Features

  • cli: default out dir in local config (f014ca7)
  • cli: info as default log level (9a5d613)
  • cli: local config (f7e3c68)
  • cli: support usage of NVD API key [#31] (2168fc9)
  • scan: support recursive scanning of funtoo meta-repo [#29] (4ee8a5e)
  • scan: support scanning the portage tree/kits of ebuilds [#29] (338cbf0)

v0.4.0

28 Feb 20:04
v0.4.0
Compare
Choose a tag to compare

0.4.0 (2022-02-28)

Features

  • cli: kev - new command for printing known exploited vulnerabilities (96bc9a3)
  • cli: recognize known exploited CVEs (c452ad9)

v0.3.1

26 Feb 14:49
v0.3.1
Compare
Choose a tag to compare

0.3.1 (2022-02-26)

Bug Fixes

  • adapter for apache http server (e28c04a)

v0.3.0

22 Feb 01:28
v0.3.0
Compare
Choose a tag to compare

0.3.0 (2022-02-22)

Features

  • cli: allow defining pkg dir for scan [#20] (057eab8)

v0.2.0

14 Feb 17:34
v0.2.0
6d73d34
Compare
Choose a tag to compare

0.2.0 (2022-02-14)

Bug Fixes

  • cli: dont stop but log on http error (b9494f5)
  • cpe-tag: more verbose error when cpe match feed not found (52f4061)

Features

  • cli: richer scan reports (23799cc)
  • cli: summary flag for cve command (890f588)
  • os-adapter: support gentoo linux (3fcfce8)